Lucene search
K

7573 matches found

Vulnrichment
Vulnrichment
added 2023/08/21 12:0 a.m.10 views

CVE-2023-39808

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a hardcoded root password which allows attackers to login with root privileges via the SSH service...

7.5AI score0.00535EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/08/21 12:0 a.m.3 views

PT-2023-27115 · N.V.K.Inter Co. · Ibsg

Name of the Vulnerable Software and Affected Versions: N.V.K.INTER CO., LTD. NVK iBSG version 3.5 Description: The issue is related to a hardcoded root password in the software, which allows attackers to login with root privileges via the SSH service. Recommendations: For version 3.5, consider...

9.8CVSS9.4AI score0.00535EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/08/21 12:0 a.m.20 views

CVE-2023-39808

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a hardcoded root password which allows attackers to login with root privileges via the SSH service...

9.8AI score0.00535EPSS
Exploits0References2
CVE
CVE
added 2023/08/21 12:0 a.m.43 views

CVE-2023-39808

CVE-2023-39808 affects N.V.K. INTER iBSG v3.5. The vulnerability stems from a hardcoded root password, enabling an attacker to log in with root privileges over SSH. Public sources corroborate the issue and assign a high severity (CVSSv3.1: 9.8; AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). No exploitatio...

9.8CVSS9.5AI score0.00535EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/08/16 4:15 p.m.4 views

CVE-2023-4204

NPort IAW5000A-I/O Series firmware version v2.2 and prior is affected by a hardcoded credential vulnerabilitywhich poses a potential risk to the security and integrity of the affected device. This vulnerability is attributed to the presence of a hardcoded key, which could potentially facilitate...

9.8CVSS5.8AI score0.00337EPSS
Exploits0References1
NVD
NVD
added 2023/08/16 4:15 p.m.16 views

CVE-2023-4204

NPort IAW5000A-I/O Series firmware version v2.2 and prior is affected by a hardcoded credential vulnerabilitywhich poses a potential risk to the security and integrity of the affected device. This vulnerability is attributed to the presence of a hardcoded key, which could potentially facilitate...

9.8CVSS6.5AI score0.00337EPSS
Exploits0References1
Prion
Prion
added 2023/08/16 4:15 p.m.16 views

Hardcoded credentials

NPort IAW5000A-I/O Series firmware version v2.2 and prior is affected by a hardcoded credential vulnerabilitywhich poses a potential risk to the security and integrity of the affected device. This vulnerability is attributed to the presence of a hardcoded key, which could potentially facilitate...

7.5CVSS9.3AI score0.00337EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/16 3:12 p.m.8 views

CVE-2023-4204 NPort IAW5000A-I/O Series Hardcoded Credential Vulnerability

NPort IAW5000A-I/O Series firmware version v2.2 and prior is affected by a hardcoded credential vulnerabilitywhich poses a potential risk to the security and integrity of the affected device. This vulnerability is attributed to the presence of a hardcoded key, which could potentially facilitate...

5.4CVSS6.9AI score0.00337EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/08/16 3:12 p.m.17 views

CVE-2023-4204 NPort IAW5000A-I/O Series Hardcoded Credential Vulnerability

NPort IAW5000A-I/O Series firmware version v2.2 and prior is affected by a hardcoded credential vulnerabilitywhich poses a potential risk to the security and integrity of the affected device. This vulnerability is attributed to the presence of a hardcoded key, which could potentially facilitate...

5.4CVSS9.6AI score0.00337EPSS
Exploits0References1
CVE
CVE
added 2023/08/16 3:12 p.m.49 views

CVE-2023-4204

The CVE-2023-4204 entry applies to MOXA NPort IAW5000A-I/O Series devices. Affected firmware versions are v2.2 and prior. The vulnerability stems from a hardcoded credential (key) embedded in the device, which could potentially allow firmware manipulation and compromise of the device’s security a...

9.8CVSS7.4AI score0.00337EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/08/16 11:15 a.m.27 views

Hardcoded credentials

lol-html can cause panics on certain HTML inputs. Anyone processing arbitrary 3rd party HTML with the library is affected...

5CVSS7.4AI score0.00575EPSS
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2023/08/16 12:0 a.m.519 views

AudioCodes VoIP Phones Hardcoded Key

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2022-054 Product: AudioCodes VoIP Phones Manufacturer: AudioCodes Ltd. Affected Versions: Firmware Versions = 3.4.8.M4 Tested Versions: Firmware Version 3.4.4.1000 Vulnerability Type: Use of Hard-coded Cryptographic Key CWE-321 Ris...

7.1AI score0.01131EPSS
Exploits2
NVD
NVD
added 2023/08/14 5:15 a.m.23 views

CVE-2023-3265

An authentication bypass exists on CyberPower PowerPanel Enterprise by failing to sanitize meta-characters from the username, allowing an attacker to login into the application with the default user "cyberpower" by appending a non-printable character.An unauthenticated attacker can leverage this...

9.8CVSS9.7AI score0.01509EPSS
Exploits0References1
Prion
Prion
added 2023/08/14 5:15 a.m.34 views

Hardcoded credentials

The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier uses hard-coded credentials for all interactions with the internal Postgres database. A malicious agent with the ability to execute operating system commands on the device can leverage this vulnerability to read, modify, or...

7.5CVSS9.6AI score0.00469EPSS
Exploits0References1Affected Software23
Prion
Prion
added 2023/08/14 4:15 a.m.18 views

Hardcoded credentials

The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier uses hard-coded credentials for all interactions with the internal Postgres database.A malicious agent with the ability to execute operating system commands on the device can leverage this vulnerability to read, modify, or...

4CVSS6.8AI score0.0032EPSS
Exploits1References1Affected Software22
Positive Technologies
Positive Technologies
added 2023/08/14 12:0 a.m.4 views

PT-2023-7583 · Aleos · Aleos

Name of the Vulnerable Software and Affected Versions: ALEOS versions 4.16.0 and earlier Description: The issue is related to the use of a hardcoded SSL certificate and private key in several versions of ALEOS. This could allow an attacker with access to these items to perform a man-in-the-middle...

8.5CVSS6.4AI score0.00296EPSS
Exploits0References11
Prion
Prion
added 2023/08/11 8:15 p.m.30 views

Hardcoded credentials

An issue was discovered in libacdes3.so on AudioCodes VoIP desk phones through 3.4.4.1000. Due to the use of hard-coded cryptographic key, an attacker with access to backup or configuration files is able to decrypt encrypted values and retrieve sensitive information, e.g., the device root passwor...

5CVSS7.5AI score0.01131EPSS
Exploits2References4Affected Software6
Prion
Prion
added 2023/08/11 8:15 p.m.19 views

Hardcoded credentials

An issue was discovered on AudioCodes VoIP desk phones through 3.4.4.1000. Due to the use of a hard-coded cryptographic key, an attacker is able to decrypt encrypted configuration files and retrieve sensitive information...

5CVSS7.5AI score0.01131EPSS
Exploits2References4Affected Software6
Prion
Prion
added 2023/08/11 3:15 a.m.12 views

Hardcoded credentials

Use of hard-coded credentials in some IntelR UnisonTM software before version 10.12 may allow an authenticated user user to potentially enable information disclosure via local access...

1.7CVSS5.2AI score0.00156EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/08/09 9:15 a.m.12 views

Hardcoded credentials

Use of Hard-coded Cryptographic Key vulnerability in Sifir Bes Education and Informatics Kunduz - Homework Helper App allows Authentication Abuse, Authentication Bypass.This issue affects Kunduz - Homework Helper App: before 6.2.3...

7.5CVSS9.5AI score0.0064EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder